Show patches with: Submitter = Jann Horn       |    State = Action Required       |   130 patches
« 1 2 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[v2] docs/mm: add more warnings around page table access [v2] docs/mm: add more warnings around page table access 1 1 - --- 2024-11-18 Jann Horn New
docs/mm: add more warnings around page table access docs/mm: add more warnings around page table access - - - --- 2024-11-14 Jann Horn New
mm/mremap: Fix address wraparound in move_page_tables() mm/mremap: Fix address wraparound in move_page_tables() 2 2 - --- 2024-11-11 Jann Horn New
[fix,6.12] mm: mark mas allocation in vms_abort_munmap_vmas as __GFP_NOFAIL [fix,6.12] mm: mark mas allocation in vms_abort_munmap_vmas as __GFP_NOFAIL 1 2 - --- 2024-10-16 Jann Horn New
MAINTAINERS: add myself as memory mapping/VMA reviewer MAINTAINERS: add myself as memory mapping/VMA reviewer 3 - - --- 2024-10-14 Jann Horn New
[RFC,v2] mm: Enforce the stack gap when changing inaccessible VMAs [RFC,v2] mm: Enforce the stack gap when changing inaccessible VMAs - - - --- 2024-10-11 Jann Horn New
mm: Enforce a minimal stack gap even against inaccessible VMAs mm: Enforce a minimal stack gap even against inaccessible VMAs - - - --- 2024-10-07 Jann Horn New
maple_tree: fix outdated flag name in comment maple_tree: fix outdated flag name in comment - 2 - --- 2024-10-07 Jann Horn New
mm/mremap: Fix move_normal_pmd/retract_page_tables race mm/mremap: Fix move_normal_pmd/retract_page_tables race 1 1 - --- 2024-10-07 Jann Horn New
[BUG] page table UAF, Re: [PATCH v8 14/21] mm/mmap: Avoid zeroing vma tree in mmap_region() [BUG] page table UAF, Re: [PATCH v8 14/21] mm/mmap: Avoid zeroing vma tree in mmap_region() - - - --- 2024-10-07 Jann Horn New
[v2,2/2] userfaultfd: Don't BUG_ON() if khugepaged yanks our page table userfaultfd: fix races around pmd_trans_huge() check 1 1 - --- 2024-08-13 Jann Horn New
[v2,1/2] userfaultfd: Fix checks for huge PMDs userfaultfd: fix races around pmd_trans_huge() check 1 1 - --- 2024-08-13 Jann Horn New
[2/2] userfaultfd: Don't BUG_ON() if khugepaged yanks our page table userfaultfd: fix races around pmd_trans_huge() check 1 1 - --- 2024-08-12 Jann Horn New
[1/2] userfaultfd: Fix pmd_trans_huge() recheck race userfaultfd: fix races around pmd_trans_huge() check 1 - - --- 2024-08-12 Jann Horn New
[v8,2/2] slub: Introduce CONFIG_SLUB_RCU_DEBUG allow KASAN to detect UAF in SLAB_TYPESAFE_BY_RCU slabs 2 1 1 --- 2024-08-09 Jann Horn New
[v8,1/2] kasan: catch invalid free before SLUB reinitializes the object allow KASAN to detect UAF in SLAB_TYPESAFE_BY_RCU slabs 1 1 - --- 2024-08-09 Jann Horn New
[v7,2/2] slub: Introduce CONFIG_SLUB_RCU_DEBUG allow KASAN to detect UAF in SLAB_TYPESAFE_BY_RCU slabs 2 1 1 --- 2024-08-08 Jann Horn New
[v7,1/2] kasan: catch invalid free before SLUB reinitializes the object allow KASAN to detect UAF in SLAB_TYPESAFE_BY_RCU slabs 1 1 - --- 2024-08-08 Jann Horn New
mm: fix (harmless) type confusion in lock_vma_under_rcu() mm: fix (harmless) type confusion in lock_vma_under_rcu() 1 - - --- 2024-08-05 Jann Horn New
[v6,2/2] slub: Introduce CONFIG_SLUB_RCU_DEBUG allow KASAN to detect UAF in SLAB_TYPESAFE_BY_RCU slabs 1 1 1 --- 2024-08-02 Jann Horn New
[v6,1/2] kasan: catch invalid free before SLUB reinitializes the object allow KASAN to detect UAF in SLAB_TYPESAFE_BY_RCU slabs 1 1 - --- 2024-08-02 Jann Horn New
[v5,2/2] slub: Introduce CONFIG_SLUB_RCU_DEBUG allow KASAN to detect UAF in SLAB_TYPESAFE_BY_RCU slabs 2 - - --- 2024-07-30 Jann Horn New
[v5,1/2] kasan: catch invalid free before SLUB reinitializes the object allow KASAN to detect UAF in SLAB_TYPESAFE_BY_RCU slabs 1 1 - --- 2024-07-30 Jann Horn New
[v4,2/2] slub: Introduce CONFIG_SLUB_RCU_DEBUG allow KASAN to detect UAF in SLAB_TYPESAFE_BY_RCU slabs - - - --- 2024-07-29 Jann Horn New
[v4,1/2] kasan: catch invalid free before SLUB reinitializes the object allow KASAN to detect UAF in SLAB_TYPESAFE_BY_RCU slabs 1 - - --- 2024-07-29 Jann Horn New
[v3,2/2] slub: Introduce CONFIG_SLUB_RCU_DEBUG allow KASAN to detect UAF in SLAB_TYPESAFE_BY_RCU slabs 2 - - --- 2024-07-25 Jann Horn New
[v3,1/2] kasan: catch invalid free before SLUB reinitializes the object allow KASAN to detect UAF in SLAB_TYPESAFE_BY_RCU slabs 1 - - --- 2024-07-25 Jann Horn New
[v2,2/2] slub: Introduce CONFIG_SLUB_RCU_DEBUG allow KASAN to detect UAF in SLAB_TYPESAFE_BY_RCU slabs 1 - - --- 2024-07-24 Jann Horn New
[v2,1/2] kasan: catch invalid free before SLUB reinitializes the object allow KASAN to detect UAF in SLAB_TYPESAFE_BY_RCU slabs 1 - - --- 2024-07-24 Jann Horn New
mm: document mmu_notifier_invalidate_range_start_nonblock() mm: document mmu_notifier_invalidate_range_start_nonblock() - 3 - --- 2023-09-18 Jann Horn New
slub: Introduce CONFIG_SLUB_RCU_DEBUG slub: Introduce CONFIG_SLUB_RCU_DEBUG - - - --- 2023-08-25 Jann Horn New
mm: userfaultfd: remove stale comment about core dump locking mm: userfaultfd: remove stale comment about core dump locking - - - --- 2023-08-15 Jann Horn New
maple tree change made it possible for VMA iteration to see same VMA twice due to late vma_merge() … maple tree change made it possible for VMA iteration to see same VMA twice due to late vma_merge() … - - - --- 2023-08-15 Jann Horn New
[BUG] Re: [PATCH v3 10/13] mm/khugepaged: collapse_pte_mapped_thp() with mmap_read_lock() [BUG] Re: [PATCH v3 10/13] mm/khugepaged: collapse_pte_mapped_thp() with mmap_read_lock() - - - --- 2023-08-14 Jann Horn New
[2/2] mm: Fix anon_vma memory ordering fix vma->anon_vma check for per-VMA locking; fix anon_vma memory ordering - - - --- 2023-07-26 Jann Horn New
[1/2] mm: lock_vma_under_rcu() must check vma->anon_vma under vma lock fix vma->anon_vma check for per-VMA locking; fix anon_vma memory ordering - 1 - --- 2023-07-26 Jann Horn New
[v2] mm: Fix memory ordering for mm_lock_seq and vm_lock_seq [v2] mm: Fix memory ordering for mm_lock_seq and vm_lock_seq - 1 - --- 2023-07-21 Jann Horn New
mm: Fix memory ordering for mm_lock_seq and vm_lock_seq mm: Fix memory ordering for mm_lock_seq and vm_lock_seq - - - --- 2023-07-21 Jann Horn New
mm: Lock VMA in dup_anon_vma() before setting ->anon_vma mm: Lock VMA in dup_anon_vma() before setting ->anon_vma - 1 - --- 2023-07-21 Jann Horn New
[v2] mm: Don't drop VMA locks in mm_drop_all_locks() [v2] mm: Don't drop VMA locks in mm_drop_all_locks() - 1 - --- 2023-07-20 Jann Horn New
mm: Don't drop VMA locks in mm_drop_all_locks() mm: Don't drop VMA locks in mm_drop_all_locks() - 1 - --- 2023-07-20 Jann Horn New
fork, vmalloc: KASAN-poison backing pages of vmapped stacks fork, vmalloc: KASAN-poison backing pages of vmapped stacks - - - --- 2023-01-17 Jann Horn New
mm/khugepaged: Fix ->anon_vma race mm/khugepaged: Fix ->anon_vma race 1 - - --- 2023-01-11 Jann Horn New
[v5,3/3] mm/khugepaged: Invoke MMU notifiers in shmem/file collapse paths [v5,1/3] mm/khugepaged: Take the right locks for page table retraction 1 1 - --- 2022-11-29 Jann Horn New
[v5,2/3] mm/khugepaged: Fix GUP-fast interaction by sending IPI [v5,1/3] mm/khugepaged: Take the right locks for page table retraction 1 1 - --- 2022-11-29 Jann Horn New
[v5,1/3] mm/khugepaged: Take the right locks for page table retraction [v5,1/3] mm/khugepaged: Take the right locks for page table retraction 1 1 - --- 2022-11-29 Jann Horn New
[v4,3/3] mm/khugepaged: Invoke MMU notifiers in shmem/file collapse paths [v4,1/3] mm/khugepaged: Take the right locks for page table retraction 1 1 - --- 2022-11-28 Jann Horn New
[v4,2/3] mm/khugepaged: Fix GUP-fast interaction by sending IPI [v4,1/3] mm/khugepaged: Take the right locks for page table retraction 1 1 - --- 2022-11-28 Jann Horn New
[v4,1/3] mm/khugepaged: Take the right locks for page table retraction [v4,1/3] mm/khugepaged: Take the right locks for page table retraction 1 1 - --- 2022-11-28 Jann Horn New
[v3,3/3] mm/khugepaged: Invoke MMU notifiers in shmem/file collapse paths [v3,1/3] mm/khugepaged: Take the right locks for page table retraction - - - --- 2022-11-25 Jann Horn New
[v3,2/3] mm/khugepaged: Fix GUP-fast interaction by sending IPI [v3,1/3] mm/khugepaged: Take the right locks for page table retraction 1 - - --- 2022-11-25 Jann Horn New
[v3,1/3] mm/khugepaged: Take the right locks for page table retraction [v3,1/3] mm/khugepaged: Take the right locks for page table retraction 1 - - --- 2022-11-25 Jann Horn New
mm/slub: add missing TID updates on slab deactivation mm/slub: add missing TID updates on slab deactivation 2 1 1 --- 2022-06-08 Jann Horn New
[v3] mm, oom: OOM sysrq should always kill a process [v3] mm, oom: OOM sysrq should always kill a process 2 - - --- 2022-01-06 Jann Horn New
[v2] mm, oom: OOM sysrq should always kill a process [v2] mm, oom: OOM sysrq should always kill a process 1 - - --- 2022-01-06 Jann Horn New
mm, oom: OOM sysrq should always kill a process mm, oom: OOM sysrq should always kill a process 1 - - --- 2022-01-05 Jann Horn New
page refcount race between prep_compound_gigantic_page() and __page_cache_add_speculative()? page refcount race between prep_compound_gigantic_page() and __page_cache_add_speculative()? - - - --- 2021-06-15 Jann Horn New
[v2] mm/gup: fix try_grab_compound_head() race with split_huge_page() [v2] mm/gup: fix try_grab_compound_head() race with split_huge_page() - 1 - --- 2021-06-15 Jann Horn New
[resend] mm/gup: fix try_grab_compound_head() race with split_huge_page() [resend] mm/gup: fix try_grab_compound_head() race with split_huge_page() 1 - - --- 2021-06-11 Jann Horn New
mm, slub: Consider rest of partial list if acquire_slab() fails mm, slub: Consider rest of partial list if acquire_slab() fails 2 - - --- 2020-12-28 Jann Horn New
[RFC,resend,6/6] mm: remove now-unused mmdrop_async() mm and ptrace: Track dumpability until task is freed - - - --- 2020-10-16 Jann Horn New
[RFC,resend,5/6] ptrace: Use mm_ref() for ->exit_mm mm and ptrace: Track dumpability until task is freed - - - --- 2020-10-16 Jann Horn New
[RFC,resend,4/6] mm, oom: Use mm_ref()/mm_unref() and avoid mmdrop_async() mm and ptrace: Track dumpability until task is freed - - - --- 2020-10-16 Jann Horn New
[RFC,resend,3/6] mm: Add refcount for preserving mm_struct without pgd mm and ptrace: Track dumpability until task is freed - - - --- 2020-10-16 Jann Horn New
[RFC,resend,2/6] refcount: Move refcount_t definition into linux/types.h mm and ptrace: Track dumpability until task is freed - - - --- 2020-10-16 Jann Horn New
[RFC,resend,1/6] ptrace: Keep mm around after exit_mm() for __ptrace_may_access() mm and ptrace: Track dumpability until task is freed - - - --- 2020-10-16 Jann Horn New
[resend,v3,2/2] exec: Broadly lock nascent mm until setup_arg_pages() Broad write-locking of nascent mm in execve - - - --- 2020-10-16 Jann Horn New
[resend,v3,1/2] mmap locking API: Order lock of nascent mm outside lock of live mm Broad write-locking of nascent mm in execve - - - --- 2020-10-16 Jann Horn New
[RFC,6/6] mm: remove now-unused mmdrop_async() mm and ptrace: Track dumpability until task is freed - - - --- 2020-10-16 Jann Horn New
[RFC,5/6] ptrace: Use mm_ref() for ->exit_mm mm and ptrace: Track dumpability until task is freed - - - --- 2020-10-16 Jann Horn New
[RFC,4/6] mm, oom: Use mm_ref()/mm_unref() and avoid mmdrop_async() mm and ptrace: Track dumpability until task is freed - - - --- 2020-10-16 Jann Horn New
[RFC,3/6] mm: Add refcount for preserving mm_struct without pgd mm and ptrace: Track dumpability until task is freed - - - --- 2020-10-16 Jann Horn New
[RFC,2/6] refcount: Move refcount_t definition into linux/types.h mm and ptrace: Track dumpability until task is freed - - - --- 2020-10-16 Jann Horn New
[RFC,1/6] ptrace: Keep mm around after exit_mm() for __ptrace_may_access() mm and ptrace: Track dumpability until task is freed - - - --- 2020-10-16 Jann Horn New
[v3,2/2] exec: Broadly lock nascent mm until setup_arg_pages() Broad write-locking of nascent mm in execve - - - --- 2020-10-15 Jann Horn New
[v3,1/2] mmap locking API: Order lock of nascent mm outside lock of live mm Broad write-locking of nascent mm in execve - - - --- 2020-10-15 Jann Horn New
proc.5: Document inaccurate RSS due to SPLIT_RSS_COUNTING proc.5: Document inaccurate RSS due to SPLIT_RSS_COUNTING - - - --- 2020-10-12 Jann Horn New
[2/2] sparc: Check VMA range in sparc_validate_prot() [1/2] mm/mprotect: Call arch_validate_prot under mmap_lock and with length - 1 - --- 2020-10-07 Jann Horn New
[1/2] mm/mprotect: Call arch_validate_prot under mmap_lock and with length [1/2] mm/mprotect: Call arch_validate_prot under mmap_lock and with length - 1 - --- 2020-10-07 Jann Horn New
[v2,2/2] exec: Broadly lock nascent mm until setup_arg_pages() Broad write-locking of nascent mm in execve - - - --- 2020-10-06 Jann Horn New
[v2,1/2] mmap locking API: Order lock of nascent mm outside lock of live mm Broad write-locking of nascent mm in execve - - - --- 2020-10-06 Jann Horn New
[2/2] exec: Broadly lock nascent mm until setup_arg_pages() Broad write-locking of nascent mm in execve - - - --- 2020-10-02 Jann Horn New
[1/2] mmap locking API: Order lock of nascent mm outside lock of live mm Broad write-locking of nascent mm in execve - - - --- 2020-10-02 Jann Horn New
[4/4] mm/gup: Assert that the mmap lock is held in __get_user_pages() [1/4] mm/gup_benchmark: Take the mmap lock around GUP 1 1 - --- 2020-09-30 Jann Horn New
[2/4] binfmt_elf: Take the mmap lock around find_extend_vma() [1/4] mm/gup_benchmark: Take the mmap lock around GUP 1 - - --- 2020-09-30 Jann Horn New
[3/4] mmap locking API: Don't check locking if the mm isn't live yet [1/4] mm/gup_benchmark: Take the mmap lock around GUP - - - --- 2020-09-30 Jann Horn New
[1/4] mm/gup_benchmark: Take the mmap lock around GUP [1/4] mm/gup_benchmark: Take the mmap lock around GUP 1 2 - --- 2020-09-30 Jann Horn New
nios2: Take mmap lock in cacheflush syscall nios2: Take mmap lock in cacheflush syscall - - - --- 2020-09-25 Jann Horn New
nds32: Take mmap lock in cacheflush syscall nds32: Take mmap lock in cacheflush syscall - - - --- 2020-09-25 Jann Horn New
mm/mmu_notifier: Fix mmget() assert in __mmu_interval_notifier_insert mm/mmu_notifier: Fix mmget() assert in __mmu_interval_notifier_insert - 1 - --- 2020-09-01 Jann Horn New
[v5,7/7] mm: Remove the now-unnecessary mmget_still_valid() hack Fix ELF / FDPIC ELF core dumping, and use mmap_lock properly in there - - - --- 2020-08-27 Jann Horn New
[v5,6/7] mm/gup: Take mmap_lock in get_dump_page() Fix ELF / FDPIC ELF core dumping, and use mmap_lock properly in there - - - --- 2020-08-27 Jann Horn New
[v5,5/7] binfmt_elf, binfmt_elf_fdpic: Use a VMA list snapshot Fix ELF / FDPIC ELF core dumping, and use mmap_lock properly in there - - - --- 2020-08-27 Jann Horn New
[v5,4/7] coredump: Rework elf/elf_fdpic vma_dump_size() into common helper Fix ELF / FDPIC ELF core dumping, and use mmap_lock properly in there - - - --- 2020-08-27 Jann Horn New
[v5,3/7] coredump: Refactor page range dumping into common helper Fix ELF / FDPIC ELF core dumping, and use mmap_lock properly in there - - - --- 2020-08-27 Jann Horn New
[v5,2/7] coredump: Let dump_emit() bail out on short writes Fix ELF / FDPIC ELF core dumping, and use mmap_lock properly in there - - - --- 2020-08-27 Jann Horn New
[v5,1/7] binfmt_elf_fdpic: Stop using dump_emit() on user pointers on !MMU Fix ELF / FDPIC ELF core dumping, and use mmap_lock properly in there - - - --- 2020-08-27 Jann Horn New
[v4,5/5] mm/gup: Take mmap_lock in get_dump_page() Fix ELF / FDPIC ELF core dumping, and use mmap_lock properly in there - - - --- 2020-08-26 Jann Horn New
[v4,4/5] binfmt_elf, binfmt_elf_fdpic: Use a VMA list snapshot Fix ELF / FDPIC ELF core dumping, and use mmap_lock properly in there - - - --- 2020-08-26 Jann Horn New
[v4,3/5] coredump: Refactor page range dumping into common helper Fix ELF / FDPIC ELF core dumping, and use mmap_lock properly in there - - - --- 2020-08-26 Jann Horn New
« 1 2 »